$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft File: bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft (raw, json) Hash identifier: n886HnAngfEITooRcw6R8sZw9zNSxIRf3kQF+wZbwzg= Subject key identifier: 46:CB:82:6A:3B:DA:2B:3E:C6:A9:CB:FD:FE:E0:4E:E3:09:94:76:61 Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 35F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft Manifest number: 3549 Signing time: Fri 04 Apr 2025 14:17:48 +0000 Manifest this update: Fri 04 Apr 2025 14:17:47 +0000 Manifest next update: Fri 11 Apr 2025 14:17:47 +0000 Files and hashes: 1: bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl (hash: T5jdV58IQhmm2b7FJVsJdlhvDOiA1EoqUaa4RQr5jBk=) 2: 119B023E80A111EFAC559545C4F9AE02.roa (hash: UcLab4fcVSxFTCKz9jwV2FcIwBHm9AwWLQOJArqJHjI=) 3: D06D852C0E8411EFB653657DC4F9AE02.roa (hash: SywI770ENl7TLzZPS+7Qd4FzLZZohYfrrDDPXPl1a7g=) 4: 4703352E2BC311EEA3EEFA66C4F9AE02.roa (hash: GhMpIsuZe6UWSXVhxx0gZ7LGDFuMOBfOpEr3szGlSIw=) 5: 5E05FB54A8FE11E990A7E27FC4F9AE02.roa (hash: mkS8yistQSPi7NMH1JehepWmWxUa6l17roNRXFEiwqI=) 6: FCBF1666677C11EBB2A3F00CC4F9AE02.roa (hash: MXTujm5bxVtwRR2qRhwfBiQo+U60HZqoc/46+Q9rCqg=) 7: 88978730772311EBB972032EC4F9AE02.roa (hash: nz3/6k7N3mPNzs0DFxh1VvDXVpDIjk6/7OQf5UZ/EgA=) 8: 331F345A383611E6B2282B5DC4F9AE02.roa (hash: WuXzJGatSIhxLLVFJYnAc7zb2/GN+pIVoHOaMyICWzI=) 9: 318FB51A383611E6B2282B5DC4F9AE02.roa (hash: 4Q3os1Mfu8xIUdVQK6hTBnRWzUONxabmo1fE2pyLLXE=) 10: 328EDB76383611E6B2282B5DC4F9AE02.roa (hash: ch1wPAb/c25q+6cdmEAHM5pjXCNPqiccski5eE5WXDs=) 11: 3204348A383611E6B2282B5DC4F9AE02.roa (hash: mPli45HHzDhlWzD7+vX8/tUBtrWHY58J4/XZrbS0zeo=) 12: 89A73D46772311EBB972032EC4F9AE02.roa (hash: 9hXnGMU3WUCKM3WK6+9iFLRQ6N17p8pM/kmtF91qcvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:17:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13812 (0x35f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B Validity Not Before: Apr 4 14:17:47 2025 GMT Not After : Apr 11 14:17:47 2025 GMT Subject: CN=67efea0c-e2fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:53:21:fb:90:67:04:00:0e:9b:36:36:75:a8: 40:04:44:41:39:bb:76:ff:c9:bf:fc:1d:ed:6a:dd: 93:1b:2d:0b:2c:1c:5c:c1:85:18:f6:98:84:0e:b8: 86:22:f6:a6:2d:3c:6f:7f:a5:d1:6c:9c:de:03:d8: 68:34:05:5c:18:3f:fb:e2:ad:03:83:3c:fc:9e:03: 31:1b:99:b6:63:1f:c0:c6:89:5b:f0:29:a5:83:ee: d2:a7:44:fa:16:bb:ab:23:32:f5:4d:34:ba:93:d4: 1b:3b:1b:d1:86:64:d6:bd:c5:1e:a9:57:12:43:c1: 4b:a5:2d:ef:48:1a:f7:6c:e5:2b:bb:3b:a4:c1:14: 9e:38:08:b0:da:77:04:90:92:4c:4f:b5:f8:09:e0: e2:c2:98:0d:db:e1:cb:08:25:80:d1:c8:7a:db:02: 66:19:f3:fd:86:4e:df:d4:0c:30:8e:db:dd:65:27: 8d:1d:41:09:32:2e:42:e5:cb:d1:b0:b4:fa:64:9c: 5d:43:c1:0f:8b:05:31:6f:98:d2:97:20:d6:96:8f: c2:fc:b9:78:4c:8e:48:18:ee:9d:88:9d:2e:4e:96: 56:10:30:1d:de:01:1f:fc:75:86:d1:ce:76:06:33: ae:25:02:04:0c:ea:2f:97:ec:8c:1c:98:f7:fe:86: 27:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:CB:82:6A:3B:DA:2B:3E:C6:A9:CB:FD:FE:E0:4E:E3:09:94:76:61 X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:83:8e:94:fa:cd:39:a0:79:6d:75:71:a3:9f:b4:ef:ca:f3: 4e:14:0e:fa:b1:1c:49:f8:78:35:80:e4:9d:3a:15:7b:0a:51: 11:81:e0:86:67:92:66:83:b6:be:e4:6b:2c:7a:5b:5b:0a:e9: 79:f9:ec:97:0f:cc:e9:80:73:2c:ca:4a:8c:68:18:43:e8:12: 60:06:7c:af:56:bf:f7:66:3f:6e:bf:46:7b:06:b0:9b:3e:7c: 29:52:fa:8d:e9:21:a5:d4:cc:be:f1:ac:85:4b:f2:cd:eb:c0: d8:d6:fc:e8:77:cf:eb:f4:e6:5f:7c:a2:b4:3c:51:71:34:69: 77:f6:06:eb:02:a9:a7:27:5c:4a:b9:bd:f5:dd:3f:cc:e0:9e: d0:3b:fa:a9:f1:55:3c:2b:b5:d9:dc:cb:b2:2b:b8:1b:fb:2a: 49:53:70:51:30:bc:66:ef:ec:a5:73:9f:4b:1d:62:32:d6:5e: 96:e2:d0:24:08:dd:1c:1c:45:6c:17:2c:61:c6:5c:7c:ac:ad: 44:04:2a:ef:8a:4e:16:31:b0:ad:9d:8f:bc:09:dc:8f:85:e7: 97:0e:86:25:0d:0c:f4:59:f8:f8:3d:a2:b7:78:1e:46:0f:cf: 02:12:a3:cd:8f:62:71:aa:ef:62:93:a0:88:c6:44:e3:d4:f8: 36:a9:7d:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjUwNDA0MTQxNzQ3WhcNMjUwNDExMTQxNzQ3WjAYMRYwFAYD VQQDEw02N2VmZWEwYy1lMmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0FMh+5BnBAAOmzY2dahABERBObt2/8m//B3tat2TGy0LLBxcwYUY9piEDriG IvamLTxvf6XRbJzeA9hoNAVcGD/74q0Dgzz8ngMxG5m2Yx/Axolb8Cmlg+7Sp0T6 FrurIzL1TTS6k9QbOxvRhmTWvcUeqVcSQ8FLpS3vSBr3bOUruzukwRSeOAiw2ncE kJJMT7X4CeDiwpgN2+HLCCWA0ch62wJmGfP9hk7f1AwwjtvdZSeNHUEJMi5C5cvR sLT6ZJxdQ8EPiwUxb5jSlyDWlo/C/Ll4TI5IGO6diJ0uTpZWEDAd3gEf/HWG0c52 BjOuJQIEDOovl+yMHJj3/oYnUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEbLgmo7 2is+xqnL/f7gTuMJlHZhMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTcwQi85N0FGNkRGMDFENkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJU MllTSEduTWhxZEZwWUw0bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGg46U+s05oHltdXGjn7TvyvNOFA76sRxJ+Hg1gOSdOhV7ClERgeCG Z5Jmg7a+5GsseltbCul5+eyXD8zpgHMsykqMaBhD6BJgBnyvVr/3Zj9uv0Z7BrCb PnwpUvqN6SGl1My+8ayFS/LN68DY1vzod8/r9OZffKK0PFFxNGl39gbrAqmnJ1xK ub313T/M4J7QO/qp8VU8K7XZ3MuyK7gb+ypJU3BRMLxm7+ylc59LHWIy1l6W4tAk CN0cHEVsFyxhxlx8rK1EBCrvik4WMbCtnY+8CdyPheeXDoYlDQz0Wfj4PaK3eB5G D88CEqPNj2Jxqu9ik6CIxkTj1Pg2qX3b -----END CERTIFICATE-----Generated at Fri Apr 4 21:58:01 2025 by rpki-client